APPENDIX A - TABLES 



Task ID 


Ti 


Qj,i 


Xl 
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1 


?2 


7 


1 


*3 


21 
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Table (1) - Periodic Task Set 



Notation 



Description 



Ti 



n 

Ti 



Tij 



The task in a process with priority level t. In traditional RMA, n is a single thread and 
the whole system is a single partition. In DEOS, we call n an aggregate thread. There 
are many threads running at the same rate in DEOS. So, if t»,i,t» t 2, axe all the 

threads defined for rate r» is the sequence of these threads when run back-to-back. This 
representation allows us to consider slack only in terms of rates and not in terms of threads 
which potentially helps performance significantly. 

The number of distinct (aggregate) threads allowed in the system. This number is fixed 
at system power up. 

The time between dispatches of n. We assume without loss of generality that 
Ti < Tz < ... < T n . Ti is also called the period of r». In DEOS, strict inequal- 
ity holds. 

The hyperperiod of the task set. H = lcm(ri,r 2 , ...T n ). Note that in a harmonic system 
such as DEOS, H = T n . 

The j th dispatch of r t . Again, in DEOS, Ty is an aggregate thread. 
The worst case execution time for ty. In classical RMS the task set is fixed so dj = Ci for 
each dispatch j where j = 1, fr. Note that this quantity is computed at each successful 
schedulability test. 

A short hand notation for C $J when dj = CV* for all j,t£ {!,..., f}. 



Table (2) - Periodic Thread Specification in Classical RMS 



[ Notation 



Description 



The value |£ for % > j, is the number of times r, will execute during one period 
defined by T». For a harmonic system, all Ui/j are integers* 

The level i slack in the interval [0, j • assuming all 1 periodic processes take their wprst 
case execution time to complete. 

The dispatch identifier of the next instance of n to complete. If n is in state Completed- 
ForltsPeriod, this is the next instance, otherwise it is the current instance. This value must 
be maintained at runtime. When aggregate threads are supported, one state variable per 
thread may be necessary. 

The amount of level * or higher aperiodic time that has been consumed since the beginning 
of the hyperperiod. This includes all time consumed by aperiodic task of priority 1, 
where periodic process overrun can be considered aperiodic process computation time. 
There is an implicit time argument, so ApertodioTiwie^ /^ericdtcTT^e^)* 
level i idle time that has occurred since the beginning of the hyperperiod. This is all the 
time not speiit processing tasks of priority % or higher. In other words, it is all the time 
spent processing tasks (periodic, aperiodic or, idle) of priority i + 1, ...,ti, n + 1 where n is 
the number of rates in the system, and level n + 1 is the idle process. There is an implicit 
time argument, so T3Uc( - XcA^^vt ). 

The dispatch identifier of n } or equivalently the period identifier of T%. There is an implicit 
time argument, so 7i(t) = y*. 

The amount of level i — 1 slack available in [0, j • Ti] which is the amount of time available 
for processing tasks at level i — 1 without causing n , r2, r» to miss any of their deadlines 
in that interval. _______ 



Table (3) - Slack Scheduling Specification in the Context of Classical RMS 



Dispatch ID 


1 


2 


3 


4 


5 


6 


7 


Timeline 


5 


10 


15 


20 


25 


30 


35 


Slack y 


4 


9 


14 


19 


24 


29 






12 


25 













Table (4) - Timeline Slack s j 



Dispatch ID 


1 


2 


3 


4 


5 


6 


TimelineSlack(l,30) 


4 


8 


12 


16 


20 


24 


TimelineSIack(2,30) 


6 


12 


18 








TimelineSlack(3,30) 


10 













Table (5) - TimelineSlacky 



thread Servics 


Description 


"treateThread 
lltartThread 

^ItartThreads 

y testartThread 
f killThread 

^topThread 
JvaitUntilNextPeriod 

= 4estartProcess 

createMutex 

lockMutex 

unlockMutex 

resetMutex 

waitForEvent 
pulseEvent 


Creates a new thread. If the thread is dynamic, it also starts the thread. 
Schedules to have the (static) thread started at the beginning of the next period defined 
by the threads rate, after the start service has completed. 

Schedules to have the set of threads started at the beginning of each of their respective 
periods defined by their rates, after the start threads service has completed. 

An active thread is restarted from the beginning. 

An active dynamic thread is deactivated. A stopped static thread is also deactivated. 

This routine is newly added. Static threads must first be stopped before they can be killed. 
The calling thread is suspended until the start of its next period where it resumes execution. 
Other threads queued at a mutex that the calling thread holds will be dequeued. 

All the process 5 threads, mutexes and events are killed. The process 5 PRIMARY THREAD is 
restarted. 

Creates a mutex that can be accessed by multiple threads in the calling thread's process. 

The calling thread is granted the lock if the mutex is unlocked and queues if waitlok is sc 
true, 

A thread releases its lock on a mutex and the lock is granted to the highest priority thread 
(if any) waiting- 
All threads queued at the mutex are dequeued (including an executing thread). 

The calling thread is suspended until the event is pulsed. 

All threads currently waiting for the pulsed event will transition from state suspended to 
state ready. 



Table (6) - Thread Services 



Notation 



Description 



Ti 

n 

Ti 
7i 

m,(t) 



Oi 



z 
C 

U B 



The aggregate of threads with priority level t. We call r, an aggregate thread. 

The number of distinct rates allowed in .the system. This number is fixed between 

coldstarts. 

The j th thread of priority level i. Even though there is no explicit ordering of threads 
within a priority level, it is convenient to do so for the sake of reference. 
The time between dispatches of r». We assume without loss of generality that 
Ti < T 2 < ... < T n . 

The period identifier. At time t where t £ [0, H] y fi(t) = 7.* = f^. 

The number of active threads forming r, at time t. For ease of exposition, the t is often 
omitted and refers to the current period of Ti so m;(t) = m». Note that there is a time 
lag between thread creation and thread activation. 

A temporary value for m,- when threads will but have not yet become (de) activated. 
The worst case budget times summed over all threads forming n. 

The value |* for i > j. nju is the number of times Tj will execute during one period 
defined by Ti. 

The primary budget of process i, k £ {1, .. M p},.p = number of active processes. Note that 
a process can be active and have its primary thread stopped, in which case some portion 
of its budget is available as timeline slack. This is poor notation actually since the set of 
active processes changes. 

The set of all processes whose unallocated primary budgets are available for slack. 
The sum of the Cfc with budgets available for slack. C = C*' 

System level utilization reserved for blocking times. A feasibility test is always of the form 
U <1-U B . 



Table (7) - Periodic Thread Notation 



1 Notation \ Description j 



A, («iSo 

A 

mi 
U,k 
Pi* 
ti.k 

Ei 

Aperiodic 
Timei(t) 

Idlest) 
d(t) 

*(«) 


is the amount of timeline slack that was made available from processes with inactive 
primary thread budgets with rate i at time ji(t)Ti. Note: A,- is not cumulative since the 
beginning of the hyperperiod. Also, in the current release of DEOS, it is always true that 
Ay = Ofori€ {2,...,n}. 

The vector (Ai, A 2 , A n ) which is maintained at run-time. 

The amount to change rate A* the -next -time the start of periods defined by Tj and 2} 
coincide. It will be the case that forci-> j> AAij = 0. Values of AA*y are updated to 
reflect user thread (de)activation requests at level t with an inactive primary thread at 
level j. Note also that if there are no primary threads active at rate *, then AA»> = OVj. 
The number of threads in aggregate thread n for i — 1, ...,n. rm = n*i(t). 
The h th thread in n, for h = 1, ...,m f . 
The budget of Set when Uk is created. 

The actual execution time of Uk for the current dispatch. If the current dispatch has 
completed then it is the total time that dispatch of Uk took to execute. 0 < < 
A boolean value indicating r;'s activation status. If n is active, Ei = TRUE otherwise Ei — 
FALSE. This value is maintained at runtime. 

the amount of level % aperiodic time consumed in [ifi(<)Ii»*]- For simplicity, we denote 

AperiodicTime^t) - AperiodicTimet. 

the amount of leveP i idle time (i.e. time spent . running the idle process) in [7i(*)T*»*] 
no longer available to slack. For simplicity we denote IsMe^CO ~Xa(fi'i* 
a conservative estimate of the amount of level i idle time that is lost as level i reclaimed 
slack due to sitting idle. 

The amount of slack reclaimed by completing for period at level t in [-fi(t)Ti t t]< 

The period identifier for Ti. For i € {1,2, ...,n},7 t (t) = [£J. Alternatively, one can think 

of 7» as the dispatch identifier for , 7,* € {0, 1, SfTi — 1}. J 

A conservative value of the amount of level k slack available that can be carried over to the next 
period IV 


CuiID(i) 
USys 

AUSys(l..n) 


This is associated with the system, and uniquely identifies the period Ti. Comparisons of 
the form P.ReqlD(t) < CurID(*} will appear in the algorithms. Sometimes these will be 
abbreviated Ryi < 7;, where uniqueness is understood. See comments in the text about 
counter roll over. 

System utilization allocated to active processes, including pending requests for cre- 
ation/activation and deletion/deactivation. Note that USys does not necessarily reflect 
the current utilization allocated to active processes. 

Changes to the actual process utilization allocated to active processes that will take place 
at the next period boundary of T», at level t". 


»*-(*) 

*m 


The remainder of full Tj periods remaining in the current (relative to t) Ti period. In 
symbols, n* {i {t) = L((7i(i> + 1)T* - t)/2}J. - 

The remainder of any unused fixed budgets belonging to ISR threads at rates I,...,; in 
the interval [t t (<y 3 (t) 4- 1)T;]. 

The sum total of all fixed budgets belonging to ISR threads at rates in any Tj 
period. In this "release of DEOS, if B{t) is the worst case "aggregate" ISR fixed thread 
budget (at time i, since ISR threads can be killed/created), £}(*) = ny| S £(t), a quantity 
that should be easy to maintain at runtime. 



Table (8) - Slack Scheduling Notation 



Notation 



Description 



UserBudget 



MaxBudget 
Rate 



Active * 

ProcActive 
ReqlD(i) 



ABudgetReq(i) 



The total amount of time (normalized by the process' primary thread's period) allo- 
cated to active users within the process. UserBudget will never exceed MaxBudget, which 
is the process' entire budget. UserBudget reflects any pending changes indictated by 
ABudgetReq. Consequently, UserBudget is not necessarily the current value of the pro- 
cess* budget assigned to user thread. But that value can be computed. 
The process 3 total budget, normalized by the period of its primary thread. The term 
budget is somewhat misleading. Utilization is a more descriptive term. 
The rate at which the highest priority thread (including the process 5 primary thread) runs. 
Note that no user thread of a process p will have a rate higher than the process' primary 
thread. It is TBD whether there is benefit in having a primary thread with rate higher 
than any of its users. Rate takes on one of the values l,.»,n, with 1 the highest rate, and 
n the slowest rate. 

A boolean value set to TRUE when the' primary thread is active and false when the primary 
thread is inactive. When p.Active is FALSE, the primary thread's budget is made available 
as timeline slack, 

A boolean value set to TRUE when the process (not just its primary thread) is active, 
otherwise it is FALSE. -» P.ProcActive => -> P.Active (regardless of its value). 
This uniquely represents the most recent time a request for user thread (de)activation has 
been made at level i. Note: it is not sufficient to use ?» since these table values are not 
updated "periodically'*, but only when other (de)activations take place after the requests 
have been processed. 

We sometimes denote P.ReqlD(i) by P. 7; where it is understood that P. 7, uniquely defines 
the request period Ti. 

This is the amount of change in allocated budget at level i that either will or did occur 
at time (ReqID t (t) + l)Ti. If the change hasn't yet occurred, subsequent requests might 
change this value. 



Table (9) - Process Record Attributes (Budget Update Vector) 



Notation 



Description 



ComputeTime 
CT 

ExecTime 
ET 

TimeSlice 



TS 



ExecutingOnSlack 



The total compute time allocated to the thread. A timeout will be enforced to ensure that 
a thread does not exceed its worst case compute time. 
An abbreviation for ComputeTime. 

The total time spent executing so far. This time is updated at each thread preemption or 
suspension. 

An abbreviation for ExecTime. 

The amount of time a thread is allowed to execute prior to a hardware timeout. Ex- 
amples of timeouts are maximum mutex execution times and maximum available slack 
consumption before thread suspension. 
An abbreviation for TimeSlice. 

A boolean, denoted by Ei for aggregate thread r» which is true if all threads at rate t have 
a true value for CornpletedForltsPeriod and false otherwise. 

A boolean value which is true when a thread's budget current budget has been from taken 
from the slack pool and false when it is a part of its fixed budget. 



Table (10) - Thread State Time Variables 



Notation 


Description 


Slack 


A record perhaps indexed by slack level (depending on the slack consumption algorithms) 
containing the amount of slack reclaimed at level 1, and the most recent period Ti during 
which it was reclaimed. 


Slack. 7; 
Slacks 


The identifier of the most recent T» ^period during which level t slack was consumed. 
i e {0 f .„,H/Ti — 1}. This attribute B not used in the maximal update set of algorithms. 
The amount of slack reclaimed by completing (early) for period at level i within the 
"current* period defined by 7,-. Slack. Hi is set to zero at every period boundary defined 
byTi. 

An abbreviation for Slacks, which works only when the slack record is not indexed. 
The amount of unused slack at level i that has been carried forward at time 7»-(t)Ti. 
Slack. Ui is recalculated at every period boundary defined by 2*. 

An abbreviation for Slack.!/*, which again works only when the slack record is not indexed. 


Hi 

Slacks 
Ui 


Slack(y) 


The slack record associated with a slack consuming thread (if any) at level j. In this 
situation, slack made available at the higher rates is allocated directly to high rate slack 
consumers, without taking away (or recalculating) slack previously allocated to low rate 
slack consumers. This record is not used in the maximal update set of algorithms. 



Table (11) - Slack Record Attributes 



APPENDIX B - ALGORITHMS 



- Algorithm Update! dIeS!ackVariabtes(*: in priority); 

- This algorithm updates the idle slack variables used when computing slack availability. 

- It is called whenever a periodic task completes. 

- updateJ;ime = the worst case time to execute this routine, a constant (perhaps based on t), 

Ei :s= {Ei 4- l)mod^-; - update the activation status 
idlejtimejconsumed := execution Jtime{r,-); 

slack-reclaimed :~ worst jcasejexecution-time(rt) - idle^imexonsumed; 
for j := 1, — 1 loop 

Ij ;b= Ij + idlejconsumed + update -time; 
end loop; 

fori •= 1i«m» 1°°P 

Jj ;= Ij - slack reclaimed + update-tirne; 

end loop; 



Algorithm (1) - Update Idle Slack Variables 



- Algorithm UpdateAperiodicSiackV a riabies(t: in priority,* : slack consuming thread); 

- This algorithm updates the aperiodic slack variables used when computing slack 

- It is called whenever an aperiodic task completes, which might mclude surplus compute time for a periodic 

- task increment, or the idle task completing. , on t -\ 

- update Jfcime = the worst case time to execute this routine, a constant (perhaps dependent on 

~ the aperiodic task t may execute over several time increments i ; e. it may be scheduled, 
„ consume all slack, suspend itself, be rescheduled when more slack is available, etc. 
slackxonsumed := execution-time-sinceiast^cheduling(t); 

fori li— i* " 1 lo °P 

Ij : a= I 3 + slack-consumed + update-time; 

end loop; 

fori :s=i,...,n loop 

Ij ;= Ij 4- updateJtime; 

Aj :=s Aj 4- siackjconsumed; 
end loop; 



Algorithm (2) - Update Aperiodic Slack Variables 



— Function AvailableSiack(i: in priority) return time; 

This algorithm calculates the slack available beginning at the time of the call and ending at the 

— end of the period denned by T», assuming no new threads were created and no existing threads are destroyed. 

slack -calc-fcime := the worst case time to execute this procedure (perhaps based on t). 
for j := 1, *.,,t — 1 loop 

Tj := Tj-\- slack-calcjtime; 
end loop; 

for j :=s i i n loop * 
Tj ;= Tj+ slack-calcJtime; 

end loop; 

slack-available := mini< 3 < n Sj; 
return slacks vailable; 

— in practice, return zero if slack,available < cswap time -f 6; > 

updateAperiodicSiackVariables should be called prior to execution of this routine, if necessary. 



Algorithm (3) - Available Slack 



mdefinite Timeout Protocol(c : caller; r : resource); 

if not^available(r) then 
if c.has .successors 

then estate := CompleteFor Period; 

reclaim r slack{ cremaining JFixedBudge t ) ; 
dequeue(c r queue(r)) ; 
else 

if eExecutingOnStack then ebudgetjremaming := available-slack(erate) ; end if; 
if c.budget-remaining < queuejtime(c) 

then estate := CompletedForPeriod; 

— slack reclamation may not be worth it here; 

else 

enqueue(c,queue(r)); 
if cSlack and SlackOn 

then^dain^ - c.resource Jime(r)); 

estate := PassivefyWaittngForEvent; 
Predecrement slack accumulators by eresource-time(r); 
else 

estate := Actively Watt ingFor Event; 
— This type of wait introduces effective blocking, 
end if ; 
end if; 
end if; 
else 

if eExecutingOnSlack then ebudget remaining :— avaHablejslack( crate); end if; 
if ebudgetjremaining < resourceJ;ime{r) 
then estate := CompletedForPeriod; 

release (r ) ; dequeue( c,queue (r ) ) ; 
else continue the execution of c with resource r available; 

Slack ^accumulators need to be predecremented if c is executing on slack and r is a mutex. 

end if ; 
end if; 



Algorithm (4) - Indefinite Timeout Protocol for a Resource Wait 



Long Duration Timeout Protocol(c : caller; t : resource; numJter : natural); 

if not.available{r) then 
if num Jter = maxJter 

then dequeue(c,queue(r); return; 

else numJter := numJter + 1; 
end if ; 

if c.has-successors 

then estate :=s CompleteForPeriod; 

<iequeue{c f f); - At the next start of c's next period* c will be moved to r's queue by DEOS 
else 

if ciExecutingOnSiack then ebudgetjremaining := available_slack(erate) ; end if; 
if c.budget remaining < queue-time(c) 

then estate Completed For Period; 

slack reclamation may not be worth it here 

else 

enqueue(c,queue(r)); 
if cSlack and SlackOn 

then redaim^lack(c.remainingJPixedBudget - eresource_time{r)); 
estate := Passively WaitingForEvent; 
predecrement slack accumulators by eresourceJime(r); 
else 

estate ;= Actively WaitingForE vent; 
— — This type of wait introduces effective blocking, 
end if; 
end if; 
end if; 
else 

if c*ExecutingOnSlack then ebudget jremaiiiing ;= availablejslack(erate); end if; 
if ebudgeta-emaining < resourceJime(r) 
then estate Completed ForPeriod; 

release(r); dequeue(c,queue(r)); 
eke continue the execution of c with resource r available; 

— Slack accumulators need to be predecremented if c is executing on slack and r is a mutex. 

end if; 
end if; 



Algorithm (5) - Long Duration Timeout Protocol for a Resource Wait 



Short Duration Timeout Protocol(c : caller; r : resource); 



while apriority <= ready jthread.(inherited)priority 

wait; higher or equal priority threads are running 

end while; 

c is at the head of queue(r) 

if not-available(r) 
then 

return timeout status to c; dequeue{c,queue(r)); 
estate := CompletedForPeriod; 
else 

case r.type is 

when r =: event => continue the execution of c with event r pulsed; 
when r = mutex :=> grant c the lock to mutex r; 

— when c is executing on slack, predecrement the slack accumulators 
when r = semaphore — > c calls wait(r); 
end case; 
end if; 

Algorithm (6) - Short Duration Timeout Protocol for a Resource Wait 

Algorithm Sy stemlnitiafiza tionOf SlackVariabies ; 

This algorithm is called once before the start of the initial hyperperiod. 

Failure to initialize slack variables at this time will result in bogus values later. 

This algorithm requires modifications when primary thread periods can be other than T\ . 



<:=0; Co:=0; 

for each process P in the registry loop 
calculate/read P's budget, Cp'» 

RUserBudget := 0; RMaxBudget := t p ) RRate := 1; 

* RReqID (0,0, ...,0); RABudgetReq := (0,0, ... r 0); Vectors of n zeroes. 

Most likey, if RProcActive, then RActive will be assumed at system startup? 

if P.Proc Active then 

if RActive then — P's primary -thread is active 

then Co := Co + Cj>; 
elseC:^C + Cp; Z:=ZU{P}; 
end if; 
end if; 
end loop; 

for t :=s 1, ...,n loop 

Ti := the period of the i th smallest rate declared in the system; 
Ai := 0; Ci :=s execution time of t,- ; 
AUsys(i) ;= 0; 
for i := 1, loop 

my := Tj/Tj; AA i(i :=0; 
— (njjj), (&Aij) are diagonal matrices, 
end loop; 
end loop; 

A x :=!•!- (< + Co + U B ); , . . 

A\ \— system level slack = budget not assigned to active processes minus system blocking tune; 

USys:= « + Co)/Ti; 



Algorithm (7) - System Initialization of Slack Variables 



— Algorithm PeriodUpdateOf Slack Variables{j ; in rate); 

— This algorithm is called at the start of every period. That is at times 0,Tj f 2Tj, ... 

— This algorithm is called once at the largest period. That is t the start of a period for Tj 

— is also the start of a period for T k when k < j, 

— r indexes the rates at which primary periods are supported. , 

— In the current release of DEOS, r = 1, always, so this is an O(n) routine. ' 

When thread (de)activations occured, update changes in dynamic period timeline slack. 

Oke may have to introduce process sets with indices for their primary threads. 

for k :sr l„j loop 

17* is a conservative amount of level k slack available and not used in the last T k period that can be carried over. 
Not all of 7£fc can be attributed to U k but can safely be assigned to l/ n . 
U k ;= U k + max(O t (A* - (A k 4- J*)); 

I k := 0; A k := 0; 7l k := 0; ;= 0; 
JSfc :s= FALSE; 7* := 7fc + 1; 
AUsys(fc) :« 0; 
a := 0; 

— In this release of DEOS, the loop here is simply A k :=s A k + Y^r^i &Mr* 

and then zero out the A^4j r entries. 

for r := k..j loop 

AA fcr := 0; 
end loop; 
A* := A k * <r; 
end loop; 

if j =: n then we are at the hyperperiod, reset the period id's and unconsumed slack. 

for k :=r l..n loop 
<y k 0; 
% := 0; 
end loop; 
end if; 



Algorithm (8) - Period Update of Slack Variables 



— Algorithm PrimaryThread(De)activation(P ; process); 

— If P.active, then deactivate P's primary thread else activate P'& primary thread. 

— (De)activation request "processing" time is at s, where 7 r T r < s < (*y r 4- l)T r , with r s= P.rate. 

Notation used defined below and is the same as that above* 

ny| P = 2y/T r . 
r :ss P.rate; 

There may be some pending requests for activations/deactivations that will not be in effect at time ("¥r{$} 4* l)T r * 

for j :sr r..n loop 

if P.ABudgetReqQ) > 0 and then CurlD(j) > P.ReqID(j) then 

These updates have already occurred. Zero them out. 

RABudgetReq(j) ;= 0; P.ReqID(j) := 0; 
end if; 

if (CurID(j) s P.ReqID(j) and ((^ + l)Tj > (y r + l)T r )) then 

P.UserBudget := RUserBudget - ABudgetReq(j)/nj| r ; 

ABudgetReq(j) is left unchanged for later updates* 

end if; 

if P.Active then 

AA rr := AArr- (P.MaxBudget - RUserBudget)T r ; 
else; 

AArr := AA rr + (P.MaxBudget - P.UserBudget)T r ; 
end if; 
end loop; 

if P.Active then P.Active := FALSE else P.Active := TRUE; end if; 



Algorithm (9) - Updates for Primary Thread (Deactivation Requests 



— Algorithm UserThread( Deactivation (£; time; j rate; P: process; activation : boolean); 

— P is the process of tlie thread being (de)activated. 

— j is the rate of the thread for which (de)activation is being requested. 

— S is +/— the budget of the thread (in time, not utilization) requesting de/acti vat ion. 

— Le. S < 0 the call is for a deactivation request, and 6 > 0 the call is for an activation request. 

— activation is a boolean, which is actually redundant information given S*s sign* 

— Can we admit a new thread at level j? 

— (De)activation request time is at s, where *YjTj < s < {yj + l)Tj. 

— This assumes that deactivations have at most a one period delay, which is coming soon. 

— The execution of this code is at time s, with period boundary code executed at time ("yj + l)Tj. 



— Notation used defined below. 
njjH — Tj/2V 

r := Porate; P*s primary thread's rate. 

CurID(i) is similar to 7,-, except it must uniquely identify which period Tj we are in since 

P. Cur ID might not have been updated for many hyperperiods, hours, or since system boot. 

for t := 1, n loop 

if P. ABudgetReq(j) £ 0 then 

if CurlD(i) > REeqlD(t) or P.ReqlD(i) - CurlD(i) > n nfl then 
P.ReqlD(t) := 0;P.ABudgetReq(t) 0; 

These updates have already been made. Zero them out. 

end if; 
end if; 
end loop; 

If an activation check for feasibility, and if feasible readjust the compute times within the process. 

if activate then 

UserBudget :=F.UserBudget; 

for % := j -j- l.-n loop 

UserBudget :=r UserBudget - min(0,P.ABudgetReq(i)); 

end loop; 

if UserBudget +SfTj > P.MaxBudget 
then 

reject the activation request on the grounds of infeasibility; 
return; 
end if; 
end if; 

P.UserBudget := P.UserBudget + 5/Tj; 

P.ReqlD(i) := P.CurID(0;RABudgetReq :~ PABudgetReq + 5/Tj; 
if not P. Active then 

AA r ,j AA r<J +£/nj| r ; 

Here is where we would update &C r j if aggregate threads are used. 

—end if; 



Algorithm (10) - Updates for User Thread (De)Activation Requests 



- Algorithm Process(De)activation(P : process, r : rate; activate : boolean); 

— This request is made at time f . If granted! it will become effective at time (^r(t) + X)T r where r := P.Rate; 

£p :=s the worst case compute time of P measured every T r time units. (This would be input in a create.) 
if activate 
then 

if P.ProcActive then return either an with error or as a no-op; end if; F is already active. 

Determine whether activating P will result in a feasible process set. 

SysBud := SysU; 

for t r 4- l T ... t n loop 

SysBud := SysBud - min(0, ASys(i)); 
end loop; 

if SysBud +C p /T r >1~U B then 

reject activation request; return; infeasible 

end if; 

Activation is feasible 

P.Rate ;= r; P.Active ;= TRUE; P.ProcActive := TRUE; 
RMaxBudget :~ C P ; RUserBudget :s 0; 
PrimaryThreadActivation(P); 
ASys(r);= ASys(r) + < P /T r ; 
else a deactivation request which have no feasibility test 

if P.UserBudget 0 then return error; end if; 
Primary ThreadDeactivation(P); 
P.ProcActive := FALSE; 
ASys(r)™ ASys(r) - t p /T r ; 
end if-then-else; 

This is another place where the AC matrix is updated, and also Z* . 

Tte* (flCttCT Hfc*/ Hdf* ^.tWttttti when all processes are assumed to be declared statically. 



Algorithm (1 1) » Process (Deactivation 



Algorithm UpdateReclaimedSfack(a: in priority); 

This algorithm updates the reclaimed slack variables used when computing slack availability. 

It is called whenever a task executing on fixed budget completes for period; 

The same algorithm applies whether doing incremental or aggregate updates. 

if T t - has completed then 

slackjeclaimed := ComputeTIrne(Tt)— ExecTime(r ( ) - updateJirae; 

— updateJtime is the time to execute this code 

71 i := 72 t -f- max(0,slack_reclaimed - £» ); 
end if; 



Algorithm (12) - Update Reclaimed Slack Variables 



— Algorithm UpdateldieSlack Variables; 

This algorithm updates the idle slack variables used when transitioning from busy to idle, 

— It is called whenever when the idle task completes (at priority (n+1)). 
Le. the idle process is denoted by r n ^i . 

update J;ime = the worst case time to execute this routine. 

idle_time := ExecTime(r n +i); 

The assumption for DEOS is that idlejfcime < Ti- 

— To relax that assumption would require more bookkeeping. 

while idlejtime > 0 and j < n loop * * » ^ v / \ 

if idle Jthne < slack-available then 0 ^ V a J 

Xj := J|+ idleJtime; idleJtime := 0; 
end if; 

Cj is denned as the worst case compute time, but can be reduced 

to the worst case amount of time threads at level j can wait for a resource 

and not give up their time to the slack. 

In DEOS, as I understand it, this is only ISR threads which run at rate 1. 

I believe the algorithm works for threads that can wait for resources while holding budgets, 

I also think under these conditions, it is suboptimal. 

if slack-available < idle-time and idle-time < {Aj 4 Uj 4 Cj) then 

Xj := Xj+ slack^vailable; 

Cj := £>j-$- (idleJtime - slack~available); 

idleJtime := 0; 
end if; 

if idleJtime > (A^ -f Uj 4 Cj) then 

Xj := Xj + slack~available; 

Cj := Cj 4 {Aj + Uj 4- Cj)— slack^available; 

idleJtime idleJtime - {Aj + Uj 4* Cj)\ 
end if; 
end loop; 



Algorithm (13) - Update Idle Slack Variables 

■ Algorithm Update AperiodicSlacfcVariabfes(t: in priority, t ; slack consuming thread); 

• This algorithm updates the aperiodic slack variables used when computing^lack availability. 

- It is called whenever an aperiodic task completes, which might include surplus compute time for a periodic 

- task increment, or the idle task completing. 

• up date-time = the worst case time to execute this routine, a constant (perhaps dependent on *). 

- the aperiodic task r may execute over several time increments, Le* it may be scheduled, 

consume all slack, suspend itself, be rescheduled when more slack is available, etc. 

slack-consumed := execution jtime^sincejlast-scheduling(t) 4- updateJtime; 

j :== 1; 

while slack-consumed > 0 loop 

l}s ;= min(siackxonsumed, max{(Aj 4- Uj 4 Uj) - (Ty 4 >tj4 slack-consumed) ,0}); 
slackxonsuraed := slack-consumed — ljs; 

j := j + 1; 
end while; 



Algorithm (14) - Update Aperiodic Slack Variables 



— Function Avails bleSlack return an n- vector of slack time = (5(l) t 5(2), — ,£(n)); 

— This algorithm calculates the slack available beginning at the time of the call, say s and ending at the 

— ends of periods denned by ((-vj (s) 4- l)Ti , (72 (*) + 1)22, »-t (-7n(«) + l)3n). 

— Note that more period timeline slack may become available in these intervals after this request. 

— This differs significantly from the original slack stealer. 

— Note the difference in fonts for A{ and Ai- They are different variables. 



slackxalctirne := the worst case time to execute this procedure; t 
Su := 0; 

for j := 1 ..n loop 

S := {Aj -h 71 j -h Uj) - (Aj + J/-f slackjcalcjtime); 
Su := Su 4* S; 

if Su < 2(cswap -f -h cachebonus 
then <Sj := 0; 
else Sj ;= S&\ 
end if; 
end loop; 

return 5 = (5i f £2, —,5 n ); 

in practice, if the slack available at any level is too small to cover the cost of context swaps 

plus other overhead, using it causes a negative effect, 

— 8 and cacheBonus is selected based on system overheads beyond cswaps. 

UpdateApertodicSlackVariables should be called prior to execution of this routine, when necessary. 

UpdateldieSlackVariables wiE have automatically be calied v pnor to exection of this routine. 



Algorithm (15)- Available Slack 



